threat
engine
.sh
Back
·
··:··
Home
/
Product
/
symantec mail security
Product
symantec mail security
32 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-3779
<= 11.0.10008.0
Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render E
6.1
MEDIUM
CVE-2024-0353
< 7.3.14006.0
Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files withou
7.8
HIGH
CVE-2023-7043
all versions
Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT
3.3
LOW
CVE-2023-5594
all versions
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate sig
7.5
HIGH
CVE-2023-3160
all versions
The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move fil
7.8
HIGH
CVE-2021-37851
>= 6.0 and < 8.0.14011.0
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the
7.3
HIGH
CVE-2022-27167
>= 6.0 and < 8.0.14011.0
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" f
7.1
HIGH
CVE-2021-37852
>= 7.0.14008.0 and < 7.3.14003.0
ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to esca
7.8
HIGH
CVE-2020-26941
<= 7.2
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (delet
5.5
MEDIUM
CVE-2020-11446
all versions
ESET Antivirus and Antispyware Module 1553 through 1560 allows a user with limited access rights to create hard links in so
7.8
HIGH
CVE-2012-6277
<= 8.1.0
Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchan
7.8
HIGH
CVE-2019-12759
< 7.5
Symantec Endpoint Protection Manager (SEPM) and Symantec Mail Security for MS Exchange (SMSMSE), prior to versions 14.2 RU2 and 7.
7.8
HIGH
CVE-2011-0548
all versions
Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x t
CVE-2010-0131
all versions
Stack-based buffer overflow in the SpreadSheet Lotus 123 reader (wkssr.dll), as used in Autonomy KeyView 10.4 and 10.9, Symantec M
CVE-2009-3032
all versions
Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Syman
CVE-2009-3037
all versions
Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x throug
CVE-2008-4564
all versions
Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail S
CVE-2007-6020
all versions
Multiple stack-based buffer overflows in foliosr.dll in the Folio Flat File speed reader in Autonomy (formerly Verity) KeyView 10.
CVE-2007-5406
<= 7.5
kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes,
CVE-2007-5405
all versions
Multiple buffer overflows in kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy (formerly Verity) KeyView,
CVE-2007-5910
all versions
Stack-based buffer overflow in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by Activ
CVE-2007-5909
all versions
Multiple stack-based buffer overflows in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as use
CVE-2007-3699
all versions
The Decomposer component in multiple Symantec products allows remote attackers to cause a denial of service (infinite loop) via a
CVE-2007-0447
all versions
Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary
CVE-2007-1792
all versions
libdayzero.dll in the Filter Hub Service (filter-hub.exe) in Symantec Mail Security for SMTP before 5.0.1 Patch 181 and Mail Secur
CVE-2007-1252
all versions
Buffer overflow in Symantec Mail Security for SMTP 5.0 before Patch 175 allows remote attackers to cause a denial of service (cras
CVE-2006-5545
all versions
Premium Antispam in Symantec Mail Security for Domino Server 5.1.x before 5.1.2.28 does not filter certain SMTP address formats, w
CVE-2005-3182
all versions
Buffer overflow in the HTTP management interface for GFI MailSecurity 8.1 allows remote attackers to execute arbitrary code via lo
CVE-2005-1346
all versions
Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11.0.0, Web Security Web Security 3.0.1.72, Mail Security fo
CVE-2005-0249
all versions
Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code
CVE-2004-1312
all versions
A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote attackers
CVE-2002-1121
all versions
SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 buil
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin